Описание
The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic controller (PLC), PumpSense, PowerAnalyzer, FeverWarn, and others is insufficiently protected against unauthorized access. An attacker with access to the internal procedures could view source code, secret credentials, and more.
Ссылки
- Product
- Third Party AdvisoryUS Government Resource
- Product
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Одновременно
EPSS
7.7 High
CVSS3
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic controller (PLC), PumpSense, PowerAnalyzer, FeverWarn, and others is insufficiently protected against unauthorized access. An attacker with access to the internal procedures could view source code, secret credentials, and more.
Уязвимость компонента MachineSense микропрограммного обеспечения систем теплового сканирования FeverWarn ESP32, FeverWarn RaspberryPi и системы централизованного хранения и управления данными FeverWarn DataHub RaspberryPi, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
7.7 High
CVSS3
6.5 Medium
CVSS3